Page 1 of 1
Free HIPAA Risk Assessment -Avita Professional Services
Complete this 5-minute assessment to receive your personalized
HIPAA Risk Report within 60 seconds. No commitment required.
Practice Name
*
Full Name
*
Email Address
*
Phone Number
*
Practice Type
*
Number of Providers
*
When did you last complete a formal HIPAA risk assessment?
*
When did you last complete a formal HIPAA risk assessment?
A
Never
B
Over 12 months ago
C
Within past 12 months
Do you have a designated Privacy Officer or Security Officer?
*
Do you have a designated Privacy Officer or Security Officer?
A
Yes
B
No
C
Not sure
Do you have signed Business Associate Agreements with all vendors handling patient data?
*
Do you have signed Business Associate Agreements with all vendors handling patient data?
A
Yes, all of them
B
Some but not all
C
No
D
Not sure what a BAA is
What EHR (Electronic Health Record) or practice management system do you use?
*
Do you use telehealth? If yes, which platform?
*
Do you use cloud storage for patient files? (Dropbox, Drive, OneDrive etc.)
*
Do you use cloud storage for patient files? (Dropbox, Drive, OneDrive etc.)
A
Yes
B
No
C
Not Sure
Do staff ever communicate with patients via personal email or text?
*
Do staff ever communicate with patients via personal email or text?
A
Yes regularly
B
Sometimes
C
No
D
Not sure
Do you use an answering or after-hours call service?
*
Do you use an answering or after-hours call service?
A
Yes with signed BAA
B
Yes without BAA
C
No
When did your staff last complete formal HIPAA training?
*
When did your staff last complete formal HIPAA training?
A
Never
B
Over 12 months agp
C
Within past 12 months
Is training completion documented with signed records or completion logs?
*
Is training completion documented with signed records or completion logs?
A
Yes
B
No
C
Not Sure
Are all workstations and laptops that access patient data encrypted?
*
Are all workstations and laptops that access patient data encrypted?
A
Yes
B
No
C
Not Sure
Do any staff share login credentials for clinical or admin systems?
*
Do any staff share login credentials for clinical or admin systems?
A
Yes
B
No
C
Not Sure
Do you have a written breach notification policy?
*
Do you have a written breach notification policy?
A
Yes
B
No
C
Not Sure what that is
Do you have a written incident response plan?
*
Do you have a written incident response plan?
A
Yes
B
No
C
Not Sure what that is
Have you received patient privacy complaints in the last 24 months?
*
Have you received patient privacy complaints in the last 24 months?
A
Yes
B
No
I agree to receive my free HIPAA Risk Report from Avita Professional Services. I understand this is not a formal audit and does not constitute legal advice.
*
I agree to receive my free HIPAA Risk Report from Avita Professional Services. I understand this is not a formal audit and does not constitute legal advice.
I Agree
Get My Free Risk Score